RSS   Vulnerabilities for
'Cloudera service and configuration manager'
   RSS

2012-04-12
 
CVE-2012-2230

CWE-310
 

 
Cloudera Manager 3.7.x before 3.7.5 and Service and Configuration Manager 3.5, when Kerberos is not enabled, does not properly install taskcontroller.cfg, which allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors, a different vulnerability than CVE-2012-1574.

 

 >>> Vendor: Cloudera 12 Products
Navigator
Hadoop
Cloudera cdh
Cloudera manager
Cloudera service and configuration manager
Manager
HUE
Key trustee server
CDH
Data science workbench
Navigator key trustee kms
Data engineering


Copyright 2024, cxsecurity.com

 

Back to Top